internal static SftpATTRS getATTR(Buffer buf)
{
SftpATTRS attr = new SftpATTRS();
attr.flags = buf.getInt();
if ((attr.flags & SSH_FILEXFER_ATTR_SIZE) != 0)
{
attr.size = buf.getLong();
}
if ((attr.flags & SSH_FILEXFER_ATTR_UIDGID) != 0)
{
attr.uid = buf.getInt();
attr.gid = buf.getInt();
}
if ((attr.flags & SSH_FILEXFER_ATTR_PERMISSIONS) != 0)
{
attr.permissions = buf.getInt();
}
if ((attr.flags & SSH_FILEXFER_ATTR_ACMODTIME) != 0)
{
attr.atime = buf.getInt();
}
if ((attr.flags & SSH_FILEXFER_ATTR_ACMODTIME) != 0)
{
attr.mtime = buf.getInt();
}
if ((attr.flags & SSH_FILEXFER_ATTR_EXTENDED) != 0)
{
int count = buf.getInt();
if (count > 0)
{
attr.extended = new String[count * 2];
for (int i = 0; i < count; i++)
{
attr.extended[i * 2] = StringAux.getString(buf.getString());
attr.extended[i * 2 + 1] = StringAux.getString(buf.getString());
}
}
}
return(attr);
}
public override bool start(Session session)
{
//System.out.println("UserAuthKeyboardInteractive: start");
Packet packet = session.packet;
Buffer buf = session.buf;
String username = session.username;
String dest = username + "@" + session.host;
if (session.port != 22)
{
dest += (":" + session.port);
}
bool cancel = false;
byte[] _username = null;
try {
_username = System.Text.Encoding.UTF8.GetBytes(username);
}
catch {
_username = StringAux.getBytes(username);
}
while (true)
{
// send
// byte SSH_MSG_USERAUTH_REQUEST(50)
// string user name (ISO-10646 UTF-8, as defined in [RFC-2279])
// string service name (US-ASCII) "ssh-userauth" ? "ssh-connection"
// string "keyboard-interactive" (US-ASCII)
// string language tag (as defined in [RFC-3066])
// string submethods (ISO-10646 UTF-8)
packet.reset();
buf.putByte((byte)Session.SSH_MSG_USERAUTH_REQUEST);
buf.putString(_username);
buf.putString(StringAux.getBytes("ssh-connection"));
//buf.putString("ssh-userauth".getBytes());
buf.putString(StringAux.getBytes("keyboard-interactive"));
buf.putString(StringAux.getBytes(""));
buf.putString(StringAux.getBytes(""));
session.write(packet);
bool firsttime = true;
loop:
while (true)
{
// receive
// byte SSH_MSG_USERAUTH_SUCCESS(52)
// string service name
try {
buf = session.read(buf);
}
catch (SshClientException e) {
e.GetType();
return(false);
}
catch (System.IO.IOException e) {
e.GetType();
return(false);
}
//System.out.println("read: 52 ? "+ buf.buffer[5]);
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_SUCCESS)
{
return(true);
}
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_BANNER)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] _message = buf.getString();
byte[] lang = buf.getString();
String message = null;
try {
message = StringAux.getStringUTF8(_message);
}
catch {
message = StringAux.getString(_message);
}
if (userinfo != null)
{
userinfo.showMessage(message);
}
goto loop;
}
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_FAILURE)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] foo = buf.getString();
int partial_success = buf.getByte();
// System.out.println(new String(foo)+
// " partial_success:"+(partial_success!=0));
if (partial_success != 0)
{
throw new SshClientPartialAuthException(StringAux.getString(foo));
}
if (firsttime)
{
throw new SshClientException("USERAUTH KI is not supported");
//return false;
//cancel=true; // ??
}
break;
}
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_INFO_REQUEST)
{
firsttime = false;
buf.getInt();
buf.getByte();
buf.getByte();
String name = StringAux.getString(buf.getString());
String instruction = StringAux.getString(buf.getString());
String languate_tag = StringAux.getString(buf.getString());
int num = buf.getInt();
//System.out.println("name: "+name);
//System.out.println("instruction: "+instruction);
//System.out.println("lang: "+languate_tag);
//System.out.println("num: "+num);
String[] prompt = new String[num];
bool[] echo = new bool[num];
for (int i = 0; i < num; i++)
{
prompt[i] = StringAux.getString(buf.getString());
echo[i] = (buf.getByte() != 0);
//System.out.println(" "+prompt[i]+","+echo[i]);
}
String[] response = null;
if (num > 0 ||
(name.Length > 0 || instruction.Length > 0)
)
{
IUIKeyboardInteractive kbi = (IUIKeyboardInteractive)userinfo;
if (userinfo != null)
{
response = kbi.promptKeyboardInteractive(dest,
name,
instruction,
prompt,
echo);
}
}
// byte SSH_MSG_USERAUTH_INFO_RESPONSE(61)
// int num-responses
// string response[1] (ISO-10646 UTF-8)
// ...
// string response[num-responses] (ISO-10646 UTF-8)
//if(response!=null)
//System.out.println("response.length="+response.length);
//else
//System.out.println("response is null");
packet.reset();
buf.putByte((byte)Session.SSH_MSG_USERAUTH_INFO_RESPONSE);
if (num > 0 &&
(response == null || // cancel
num != response.Length))
{
buf.putInt(0);
if (response == null)
{
cancel = true;
}
}
else
{
buf.putInt(num);
for (int i = 0; i < num; i++)
{
//System.out.println("response: |"+response[i]+"| <- replace here with **** if you need");
buf.putString(StringAux.getBytes(response[i]));
}
}
session.write(packet);
if (cancel)
{
break;
}
//System.out.println("continue loop");
goto loop;
}
//throw new JSchException("USERAUTH fail ("+buf.buffer[5]+")");
return(false);
}
if (cancel)
{
throw new SshClientAuthCancelException("keyboard-interactive");
//break;
}
}
//return false;
}
public override bool next(LibSterileSSH.SecureShell.Buffer _buf)
{
int i, j;
bool result = false;
switch (state)
{
case SSH_MSG_KEXDH_REPLY:
// The server responds with:
// byte SSH_MSG_KEXDH_REPLY(31)
// string server public host key and certificates (K_S)
// mpint f
// string signature of H
j = _buf.getInt();
j = _buf.getByte();
j = _buf.getByte();
if (j != 31)
{
Console.WriteLine("type: must be 31 " + j);
result = false;
break;
}
K_S = _buf.getString();
// K_S is server_key_blob, which includes ....
// string ssh-dss
// impint p of dsa
// impint q of dsa
// impint g of dsa
// impint pub_key of dsa
//System.out.print("K_S: "); //dump(K_S, 0, K_S.length);
byte[] f = _buf.getMPInt();
byte[] sig_of_H = _buf.getString();
/*
* for(int ii=0; ii<sig_of_H.length;ii++){
* System.out.print(Integer.toHexString(sig_of_H[ii]&0xff));
* System.out.print(": ");
* }
* Console.WriteLine("");
*/
dh.setF(f);
K = dh.getK();
//The hash H is computed as the HASH hash of the concatenation of the
//following:
// string V_C, the client's version string (CR and NL excluded)
// string V_S, the server's version string (CR and NL excluded)
// string I_C, the payload of the client's SSH_MSG_KEXINIT
// string I_S, the payload of the server's SSH_MSG_KEXINIT
// string K_S, the host key
// mpint e, exchange value sent by the client
// mpint f, exchange value sent by the server
// mpint K, the shared secret
// This value is called the exchange hash, and it is used to authenti-
// cate the key exchange.
buf.reset();
buf.putString(V_C);
buf.putString(V_S);
buf.putString(I_C);
buf.putString(I_S);
buf.putString(K_S);
buf.putMPInt(e);
buf.putMPInt(f);
buf.putMPInt(K);
byte[] foo = new byte[buf.getLength()];
buf.getByte(foo);
sha.update(foo, 0, foo.Length);
H = sha.digest();
//System.out.print("H -> "); //dump(H, 0, H.length);
i = 0;
j = 0;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
String alg = StringAux.getString(K_S, i, j);
i += j;
result = false;
if (alg.Equals("ssh-rsa"))
{
byte[] tmp;
byte[] ee;
byte[] n;
type = RSA;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
ee = tmp;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
n = tmp;
// SignatureRSA sig=new SignatureRSA();
// sig.init();
ISignatureRSA sig = null;
try {
Type t = Type.GetType(session.getConfig("signature.rsa"));
sig = (ISignatureRSA)(Activator.CreateInstance(t));
sig.init();
}
catch (Exception eee) {
Console.WriteLine(eee);
}
sig.setPubKey(ee, n);
sig.update(H);
result = sig.verify(sig_of_H);
//MainClass.dump(ee, n, sig_of_H, H);
}
else if (alg.Equals("ssh-dss"))
{
byte[] q = null;
byte[] tmp;
byte[] p;
byte[] g;
type = DSS;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
p = tmp;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
q = tmp;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
g = tmp;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
f = tmp;
// SignatureDSA sig=new SignatureDSA();
// sig.init();
ISignatureDSA sig = null;
try {
Type t = Type.GetType(session.getConfig("signature.dss"));
sig = (ISignatureDSA)(Activator.CreateInstance(t));
sig.init();
}
catch (Exception ee) {
Console.WriteLine(ee);
}
sig.setPubKey(f, p, q, g);
sig.update(H);
result = sig.verify(sig_of_H);
}
else
{
Console.WriteLine("unknow alg");
}
state = STATE_END;
break;
}
return(result);
}
public static AKeyPair load(SshClient jsch, String prvkey, String pubkey)
{
byte[] iv = new byte[8]; // 8
bool encrypted = true;
byte[] data = null;
byte[] publickeyblob = null;
int type = ERROR;
int vendor = VENDOR_OPENSSH;
try {
//File file=new File(prvkey);
FileStream fis = File.OpenRead(prvkey);
byte[] buf = new byte[(int)(fis.Length)];
int len = fis.Read(buf, 0, buf.Length);
fis.Close();
int i = 0;
while (i < len)
{
if (buf[i] == 'B' && buf[i + 1] == 'E' && buf[i + 2] == 'G' && buf[i + 3] == 'I')
{
i += 6;
if (buf[i] == 'D' && buf[i + 1] == 'S' && buf[i + 2] == 'A')
{
type = DSA;
}
else if (buf[i] == 'R' && buf[i + 1] == 'S' && buf[i + 2] == 'A')
{
type = RSA;
}
else if (buf[i] == 'S' && buf[i + 1] == 'S' && buf[i + 2] == 'H') // FSecure
{
type = UNKNOWN;
vendor = VENDOR_FSECURE;
}
else
{
//System.outs.println("invalid format: "+identity);
throw new SshClientException("invaid privatekey: " + prvkey);
}
i += 3;
continue;
}
if (buf[i] == 'C' && buf[i + 1] == 'B' && buf[i + 2] == 'C' && buf[i + 3] == ',')
{
i += 4;
for (int ii = 0; ii < iv.Length; ii++)
{
iv[ii] = (byte)(((a2b(buf[i++]) << 4) & 0xf0) + (a2b(buf[i++]) & 0xf));
}
continue;
}
if (buf[i] == 0x0d &&
i + 1 < buf.Length && buf[i + 1] == 0x0a)
{
i++;
continue;
}
if (buf[i] == 0x0a && i + 1 < buf.Length)
{
if (buf[i + 1] == 0x0a)
{
i += 2;
break;
}
if (buf[i + 1] == 0x0d &&
i + 2 < buf.Length && buf[i + 2] == 0x0a)
{
i += 3;
break;
}
bool inheader = false;
for (int j = i + 1; j < buf.Length; j++)
{
if (buf[j] == 0x0a)
{
break;
}
//if(buf[j]==0x0d) break;
if (buf[j] == ':')
{
inheader = true;
break;
}
}
if (!inheader)
{
i++;
encrypted = false; // no passphrase
break;
}
}
i++;
}
if (type == ERROR)
{
throw new SshClientException("invaid privatekey: " + prvkey);
}
int start = i;
while (i < len)
{
if (buf[i] == 0x0a)
{
bool xd = (buf[i - 1] == 0x0d);
Array.Copy(buf, i + 1,
buf,
i - (xd ? 1 : 0),
len - i - 1 - (xd ? 1 : 0)
);
if (xd)
{
len--;
}
len--;
continue;
}
if (buf[i] == '-')
{
break;
}
i++;
}
data = StringAux.fromBase64(buf, start, i - start);
if (data.Length > 4 && // FSecure
data[0] == (byte)0x3f &&
data[1] == (byte)0x6f &&
data[2] == (byte)0xf9 &&
data[3] == (byte)0xeb)
{
LibSterileSSH.SecureShell.Buffer _buf = new LibSterileSSH.SecureShell.Buffer(data);
_buf.getInt(); // 0x3f6ff9be
_buf.getInt();
byte[] _type = _buf.getString();
//System.outs.println("type: "+new String(_type));
byte[] _cipher = _buf.getString();
String cipher = StringAux.getString(_cipher);
//System.outs.println("cipher: "+cipher);
if (cipher.Equals("3des-cbc"))
{
_buf.getInt();
byte[] foo = new byte[data.Length - _buf.getOffSet()];
_buf.getByte(foo);
data = foo;
encrypted = true;
throw new SshClientException("unknown privatekey format: " + prvkey);
}
else if (cipher.Equals("none"))
{
_buf.getInt();
_buf.getInt();
encrypted = false;
byte[] foo = new byte[data.Length - _buf.getOffSet()];
_buf.getByte(foo);
data = foo;
}
}
if (pubkey != null)
{
try {
//file=new File(pubkey);
fis = File.OpenRead(pubkey);
buf = new byte[(int)(fis.Length)];
len = fis.Read(buf, 0, buf.Length);
fis.Close();
if (buf.Length > 4 && // FSecure's public key
buf[0] == '-' && buf[1] == '-' && buf[2] == '-' && buf[3] == '-')
{
bool valid = true;
i = 0;
do
{
i++;
} while (buf.Length > i && buf[i] != 0x0a);
if (buf.Length <= i)
{
valid = false;
}
while (valid)
{
if (buf[i] == 0x0a)
{
bool inheader = false;
for (int j = i + 1; j < buf.Length; j++)
{
if (buf[j] == 0x0a)
{
break;
}
if (buf[j] == ':')
{
inheader = true;
break;
}
}
if (!inheader)
{
i++;
break;
}
}
i++;
}
if (buf.Length <= i)
{
valid = false;
}
start = i;
while (valid && i < len)
{
if (buf[i] == 0x0a)
{
Array.Copy(buf, i + 1, buf, i, len - i - 1);
len--;
continue;
}
if (buf[i] == '-')
{
break;
}
i++;
}
if (valid)
{
publickeyblob = StringAux.fromBase64(buf, start, i - start);
if (type == UNKNOWN)
{
if (publickeyblob[8] == 'd')
{
type = DSA;
}
else if (publickeyblob[8] == 'r')
{
type = RSA;
}
}
}
}
else
{
if (buf[0] == 's' && buf[1] == 's' && buf[2] == 'h' && buf[3] == '-')
{
i = 0;
while (i < len)
{
if (buf[i] == ' ')
{
break;
}
i++;
}
i++;
if (i < len)
{
start = i;
while (i < len)
{
if (buf[i] == ' ')
{
break;
}
i++;
}
publickeyblob = StringAux.fromBase64(buf, start, i - start);
}
}
}
}
catch //(Exception ee)
{
}
}
}
catch (Exception e) {
if (e is SshClientException)
{
throw (SshClientException)e;
}
throw new SshClientException(e.ToString());
}
AKeyPair kpair = null;
if (type == DSA)
{
kpair = new KeyPairDSA(jsch);
}
else if (type == RSA)
{
kpair = new KeyPairRSA(jsch);
}
if (kpair != null)
{
kpair.encrypted = encrypted;
kpair.publickeyblob = publickeyblob;
kpair.vendor = vendor;
if (encrypted)
{
kpair.iv = iv;
kpair.data = data;
}
else
{
if (kpair.parse(data))
{
return(kpair);
}
else
{
throw new SshClientException("invaid privatekey: " + prvkey);
}
}
}
return(kpair);
}
public override bool start(Session session)
{
// super.start(session);
//System.out.println("UserAuthPassword: start");
Packet packet = session.packet;
Buffer buf = session.buf;
String username = session.username;
String password = session.password;
String dest = username + "@" + session.host;
if (session.port != 22)
{
dest += (":" + session.port);
}
while (true)
{
if (password == null)
{
if (userinfo == null)
{
//throw new JSchException("USERAUTH fail");
return(false);
}
if (!userinfo.promptPassword("Password for " + dest))
{
throw new SshClientAuthCancelException("password");
//break;
}
password = userinfo.getPassword();
if (password == null)
{
throw new SshClientAuthCancelException("password");
//break;
}
}
byte[] _username = null;
try {
_username = StringAux.getBytesUTF8(username);
}
catch { //(java.io.UnsupportedEncodingException e){
_username = StringAux.getBytes(username);
}
byte[] _password = null;
try {
_password = StringAux.getBytesUTF8(password);
}
catch { //(java.io.UnsupportedEncodingException e){
_password = StringAux.getBytes(password);
}
// send
// byte SSH_MSG_USERAUTH_REQUEST(50)
// string user name
// string service name ("ssh-connection")
// string "password"
// boolen FALSE
// string plaintext password (ISO-10646 UTF-8)
packet.reset();
buf.putByte((byte)Session.SSH_MSG_USERAUTH_REQUEST);
buf.putString(_username);
buf.putString(StringAux.getBytes("ssh-connection"));
buf.putString(StringAux.getBytes("password"));
buf.putByte((byte)0);
buf.putString(_password);
session.write(packet);
loop:
while (true)
{
// receive
// byte SSH_MSG_USERAUTH_SUCCESS(52)
// string service name
buf = session.read(buf);
//System.out.println("read: 52 ? "+ buf.buffer[5]);
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_SUCCESS)
{
return(true);
}
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_BANNER)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] _message = buf.getString();
byte[] lang = buf.getString();
String message = null;
try {
message = StringAux.getStringUTF8(_message);
}
catch { //(java.io.UnsupportedEncodingException e){
message = StringAux.getString(_message);
}
if (userinfo != null)
{
userinfo.showMessage(message);
}
goto loop;
}
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_FAILURE)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] foo = buf.getString();
int partial_success = buf.getByte();
//System.out.println(new String(foo)+
// " partial_success:"+(partial_success!=0));
if (partial_success != 0)
{
throw new SshClientPartialAuthException(StringAux.getString(foo));
}
break;
}
else
{
// System.out.println("USERAUTH fail ("+buf.buffer[5]+")");
// throw new JSchException("USERAUTH fail ("+buf.buffer[5]+")");
return(false);
}
}
password = null;
}
//throw new JSchException("USERAUTH fail");
//return false;
}
public override bool start(Session session)
{
//super.start(session);
//Vector identities=JSch.identities;
System.Collections.ArrayList identities = session.jsch.identities;
Packet packet = session.packet;
Buffer buf = session.buf;
String passphrase = null;
String username = session.username;
byte[] _username = null;
try {
_username = StringAux.getBytesUTF8(username);
}
catch { //(java.io.UnsupportedEncodingException e){
_username = StringAux.getBytes(username);
}
for (int i = 0; i < identities.Count; i++)
{
IIdentity identity = (IIdentity)(identities[i]);
byte[] pubkeyblob = identity.getPublicKeyBlob();
//System.out.println("UserAuthPublicKey: "+identity+" "+pubkeyblob);
if (pubkeyblob != null)
{
// send
// byte SSH_MSG_USERAUTH_REQUEST(50)
// string user name
// string service name ("ssh-connection")
// string "publickey"
// boolen FALSE
// string plaintext password (ISO-10646 UTF-8)
packet.reset();
buf.putByte((byte)Session.SSH_MSG_USERAUTH_REQUEST);
buf.putString(_username);
buf.putString(StringAux.getBytes("ssh-connection"));
buf.putString(StringAux.getBytes("publickey"));
buf.putByte((byte)0);
buf.putString(StringAux.getBytes(identity.getAlgName()));
buf.putString(pubkeyblob);
session.write(packet);
loop1:
while (true)
{
// receive
// byte SSH_MSG_USERAUTH_PK_OK(52)
// string service name
buf = session.read(buf);
//System.out.println("read: 60 ? "+ buf.buffer[5]);
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_PK_OK)
{
break;
}
else if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_FAILURE)
{
// System.out.println("USERAUTH publickey "+session.getIdentity()+
// " is not acceptable.");
break;
}
else if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_BANNER)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] _message = buf.getString();
byte[] lang = buf.getString();
String message = null;
try {
message = StringAux.getStringUTF8(_message);
}
catch { //(java.io.UnsupportedEncodingException e){
message = StringAux.getString(_message);
}
if (userinfo != null)
{
userinfo.showMessage(message);
}
goto loop1;
}
else
{
//System.out.println("USERAUTH fail ("+buf.buffer[5]+")");
//throw new JSchException("USERAUTH fail ("+buf.buffer[5]+")");
break;
}
}
if (buf.buffer[5] != Session.SSH_MSG_USERAUTH_PK_OK)
{
continue;
}
}
//System.out.println("UserAuthPublicKey: identity.isEncrypted()="+identity.isEncrypted());
int count = 5;
while (true)
{
if ((identity.isEncrypted() && passphrase == null))
{
if (userinfo == null)
{
throw new SshClientException("USERAUTH fail");
}
if (identity.isEncrypted() &&
!userinfo.promptPassphrase("Passphrase for " + identity.getName()))
{
throw new SshClientAuthCancelException("publickey");
//throw new JSchException("USERAUTH cancel");
//break;
}
passphrase = userinfo.getPassphrase();
}
if (!identity.isEncrypted() || passphrase != null)
{
//System.out.println("UserAuthPublicKey: @1 "+passphrase);
if (identity.setPassphrase(passphrase))
{
break;
}
}
passphrase = null;
count--;
if (count == 0)
{
break;
}
}
//System.out.println("UserAuthPublicKey: identity.isEncrypted()="+identity.isEncrypted());
if (identity.isEncrypted())
{
continue;
}
if (pubkeyblob == null)
{
pubkeyblob = identity.getPublicKeyBlob();
}
//System.out.println("UserAuthPublicKey: pubkeyblob="+pubkeyblob);
if (pubkeyblob == null)
{
continue;
}
// send
// byte SSH_MSG_USERAUTH_REQUEST(50)
// string user name
// string service name ("ssh-connection")
// string "publickey"
// boolen TRUE
// string plaintext password (ISO-10646 UTF-8)
packet.reset();
buf.putByte((byte)Session.SSH_MSG_USERAUTH_REQUEST);
buf.putString(_username);
buf.putString(StringAux.getBytes("ssh-connection"));
buf.putString(StringAux.getBytes("publickey"));
buf.putByte((byte)1);
buf.putString(StringAux.getBytes(identity.getAlgName()));
buf.putString(pubkeyblob);
// byte[] tmp=new byte[buf.index-5];
// System.arraycopy(buf.buffer, 5, tmp, 0, tmp.length);
// buf.putString(signature);
byte[] sid = session.getSessionId();
uint sidlen = (uint)sid.Length;
byte[] tmp = new byte[4 + sidlen + buf.index - 5];
tmp[0] = (byte)(sidlen >> 24);
tmp[1] = (byte)(sidlen >> 16);
tmp[2] = (byte)(sidlen >> 8);
tmp[3] = (byte)(sidlen);
Array.Copy(sid, 0, tmp, 4, sidlen);
Array.Copy(buf.buffer, 5, tmp, 4 + sidlen, buf.index - 5);
byte[] signature = identity.getSignature(session, tmp);
if (signature == null) // for example, too long key length.
{
break;
}
buf.putString(signature);
session.write(packet);
loop2:
while (true)
{
// receive
// byte SSH_MSG_USERAUTH_SUCCESS(52)
// string service name
buf = session.read(buf);
//System.out.println("read: 52 ? "+ buf.buffer[5]);
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_SUCCESS)
{
return(true);
}
else if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_BANNER)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] _message = buf.getString();
byte[] lang = buf.getString();
String message = null;
try {
message = StringAux.getStringUTF8(_message);
}
catch { //(java.io.UnsupportedEncodingException e){
message = StringAux.getString(_message);
}
if (userinfo != null)
{
userinfo.showMessage(message);
}
goto loop2;
}
else if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_FAILURE)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] foo = buf.getString();
int partial_success = buf.getByte();
//System.out.println(new String(foo)+
// " partial_success:"+(partial_success!=0));
if (partial_success != 0)
{
throw new SshClientPartialAuthException(StringAux.getString(foo));
}
break;
}
//System.out.println("USERAUTH fail ("+buf.buffer[5]+")");
//throw new JSchException("USERAUTH fail ("+buf.buffer[5]+")");
break;
}
}
return(false);
}
public override bool next(LibSterileSSH.SecureShell.Buffer _buf)
{
int i, j;
bool result = false;
switch (state)
{
case SSH_MSG_KEX_DH_GEX_GROUP:
// byte SSH_MSG_KEX_DH_GEX_GROUP(31)
// mpint p, safe prime
// mpint g, generator for subgroup in GF (p)
_buf.getInt();
_buf.getByte();
j = _buf.getByte();
if (j != 31)
{
Console.WriteLine("type: must be 31 " + j);
result = false;
}
p = _buf.getMPInt();
g = _buf.getMPInt();
/*
* for(int iii=0; iii<p.length; iii++){
* System.out.println("0x"+Integer.toHexString(p[iii]&0xff)+",");
* }
* System.out.println("");
* for(int iii=0; iii<g.length; iii++){
* System.out.println("0x"+Integer.toHexString(g[iii]&0xff)+",");
* }
*/
dh.setP(p);
dh.setG(g);
// The client responds with:
// byte SSH_MSG_KEX_DH_GEX_INIT(32)
// mpint e <- g^x mod p
// x is a random number (1 < x < (p-1)/2)
e = dh.getE();
packet.reset();
buf.putByte((byte)0x20);
buf.putMPInt(e);
session.write(packet);
state = SSH_MSG_KEX_DH_GEX_REPLY;
result = true;
break;
case SSH_MSG_KEX_DH_GEX_REPLY:
// The server responds with:
// byte SSH_MSG_KEX_DH_GEX_REPLY(33)
// string server public host key and certificates (K_S)
// mpint f
// string signature of H
j = _buf.getInt();
j = _buf.getByte();
j = _buf.getByte();
if (j != 33)
{
Console.WriteLine("type: must be 33 " + j);
result = false;
}
K_S = _buf.getString();
// K_S is server_key_blob, which includes ....
// string ssh-dss
// impint p of dsa
// impint q of dsa
// impint g of dsa
// impint pub_key of dsa
//System.out.print("K_S: "); dump(K_S, 0, K_S.length);
byte[] f = _buf.getMPInt();
byte[] sig_of_H = _buf.getString();
dh.setF(f);
K = dh.getK();
//The hash H is computed as the HASH hash of the concatenation of the
//following:
// string V_C, the client's version string (CR and NL excluded)
// string V_S, the server's version string (CR and NL excluded)
// string I_C, the payload of the client's SSH_MSG_KEXINIT
// string I_S, the payload of the server's SSH_MSG_KEXINIT
// string K_S, the host key
// uint32 min, minimal size in bits of an acceptable group
// uint32 n, preferred size in bits of the group the server should send
// uint32 max, maximal size in bits of an acceptable group
// mpint p, safe prime
// mpint g, generator for subgroup
// mpint e, exchange value sent by the client
// mpint f, exchange value sent by the server
// mpint K, the shared secret
// This value is called the exchange hash, and it is used to authenti-
// cate the key exchange.
buf.reset();
buf.putString(V_C);
buf.putString(V_S);
buf.putString(I_C);
buf.putString(I_S);
buf.putString(K_S);
buf.putInt(min);
buf.putInt(preferred);
buf.putInt(max);
buf.putMPInt(p);
buf.putMPInt(g);
buf.putMPInt(e);
buf.putMPInt(f);
buf.putMPInt(K);
byte[] foo = new byte[buf.getLength()];
buf.getByte(foo);
sha.update(foo, 0, foo.Length);
H = sha.digest();
// System.out.print("H -> "); dump(H, 0, H.length);
i = 0;
j = 0;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
String alg = StringAux.getString(K_S, i, j);
i += j;
if (alg.Equals("ssh-rsa"))
{
byte[] tmp;
byte[] ee;
byte[] n;
type = RSA;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
ee = tmp;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
n = tmp;
// SignatureRSA sig=new SignatureRSA();
// sig.init();
ISignatureRSA sig = null;
try {
Type t = Type.GetType(session.getConfig("signature.rsa"));
sig = (ISignatureRSA)(Activator.CreateInstance(t));
sig.init();
}
catch (Exception eee) {
Console.WriteLine(eee);
}
sig.setPubKey(ee, n);
sig.update(H);
result = sig.verify(sig_of_H);
}
else if (alg.Equals("ssh-dss"))
{
byte[] q = null;
byte[] tmp;
type = DSS;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
p = tmp;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
q = tmp;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
g = tmp;
j = (int)((K_S[i++] << 24) & 0xff000000) | ((K_S[i++] << 16) & 0x00ff0000) |
((K_S[i++] << 8) & 0x0000ff00) | ((K_S[i++]) & 0x000000ff);
tmp = new byte[j];
Array.Copy(K_S, i, tmp, 0, j);
i += j;
f = tmp;
// SignatureDSA sig=new SignatureDSA();
// sig.init();
ISignatureDSA sig = null;
try {
Type t = Type.GetType(session.getConfig("signature.dss"));
sig = (ISignatureDSA)(Activator.CreateInstance(t));
sig.init();
}
catch (Exception ee) {
Console.WriteLine(ee);
}
sig.setPubKey(f, p, q, g);
sig.update(H);
result = sig.verify(sig_of_H);
}
else
{
Console.WriteLine("unknow alg");
}
state = STATE_END;
break;
}
return(result);
}
internal void setKnownHosts(StreamReader foo)
{
pool.Clear();
System.Text.StringBuilder sb = new System.Text.StringBuilder();
byte i;
int j;
bool error = false;
try {
StreamReader fis = foo;
String host;
String key = null;
int type;
byte[] buf = new byte[1024];
int bufl = 0;
loop:
while (true)
{
bufl = 0;
while (true)
{
j = fis.Read();
if (j == -1)
{
goto break_loop;
}
if (j == 0x0d)
{
continue;
}
if (j == 0x0a)
{
break;
}
buf[bufl++] = (byte)j;
}
j = 0;
while (j < bufl)
{
i = buf[j];
if (i == ' ' || i == '\t')
{
j++;
continue;
}
if (i == '#')
{
addInvalidLine(System.Text.Encoding.Default.GetString(buf, 0, bufl));
goto loop;
}
break;
}
if (j >= bufl)
{
addInvalidLine(System.Text.Encoding.Default.GetString(buf, 0, bufl));
goto loop;
}
sb.Length = 0;
while (j < bufl)
{
i = buf[j++];
if (i == 0x20 || i == '\t')
{
break;
}
sb.Append((char)i);
}
host = sb.ToString();
if (j >= bufl || host.Length == 0)
{
addInvalidLine(System.Text.Encoding.Default.GetString(buf, 0, bufl));
goto loop;
}
sb.Length = 0;
type = -1;
while (j < bufl)
{
i = buf[j++];
if (i == 0x20 || i == '\t')
{
break;
}
sb.Append((char)i);
}
if (sb.ToString().Equals("ssh-dss"))
{
type = HostKey.SSHDSS;
}
else if (sb.ToString().Equals("ssh-rsa"))
{
type = HostKey.SSHRSA;
}
else
{
j = bufl;
}
if (j >= bufl)
{
addInvalidLine(StringAux.getString(buf, 0, bufl));
goto loop;
}
sb.Length = 0;
while (j < bufl)
{
i = buf[j++];
if (i == 0x0d)
{
continue;
}
if (i == 0x0a)
{
break;
}
sb.Append((char)i);
}
key = sb.ToString();
if (key.Length == 0)
{
addInvalidLine(StringAux.getString(buf, 0, bufl));
goto loop;
}
//System.out.println(host);
//System.out.println("|"+key+"|");
HostKey hk = new HostKey(host, type,
StringAux.fromBase64(StringAux.getBytes(key), 0,
key.Length));
pool.Add(hk);
}
break_loop:
fis.Close();
if (error)
{
throw new SshClientException("KnownHosts: invalid format");
}
}
catch (Exception e) {
if (e is SshClientException)
{
throw (SshClientException)e;
}
throw new SshClientException(e.ToString());
}
}
public override bool start(Session session)
{
base.start(session);
//System.out.println("UserAuthNone: start");
Packet packet = session.packet;
Buffer buf = session.buf;
String username = session.username;
byte[] _username = null;
try {
_username = StringAux.getBytesUTF8(username);
}
catch { //(java.io.UnsupportedEncodingException e){
_username = StringAux.getBytes(username);
}
// send
// byte SSH_MSG_USERAUTH_REQUEST(50)
// string user name
// string service name ("ssh-connection")
// string "none"
packet.reset();
buf.putByte((byte)Session.SSH_MSG_USERAUTH_REQUEST);
buf.putString(_username);
buf.putString(StringAux.getBytes("ssh-connection"));
buf.putString(StringAux.getBytes("none"));
session.write(packet);
loop:
while (true)
{
// receive
// byte SSH_MSG_USERAUTH_SUCCESS(52)
// string service name
buf = session.read(buf);
//System.out.println("UserAuthNone: read: 52 ? "+ buf.buffer[5]);
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_SUCCESS)
{
return(true);
}
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_BANNER)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] _message = buf.getString();
byte[] lang = buf.getString();
String message = null;
try {
message = StringAux.getStringUTF8(_message);
}
catch { //(java.io.UnsupportedEncodingException e){
message = StringAux.getString(_message);
}
if (userinfo != null)
{
userinfo.showMessage(message);
}
goto loop;
}
if (buf.buffer[5] == Session.SSH_MSG_USERAUTH_FAILURE)
{
buf.getInt();
buf.getByte();
buf.getByte();
byte[] foo = buf.getString();
int partial_success = buf.getByte();
methods = StringAux.getString(foo);
//System.out.println("UserAuthNONE: "+methods+
// " partial_success:"+(partial_success!=0));
// if(partial_success!=0){
// throw new JSchPartialAuthException(new String(foo));
// }
break;
}
else
{
// System.out.println("USERAUTH fail ("+buf.buffer[5]+")");
throw new SshClientException("USERAUTH fail (" + buf.buffer[5] + ")");
}
}
//throw new JSchException("USERAUTH fail");
return(false);
}
/*
* void dump(byte[] foo){
* for(int i=0; i<foo.length; i++){
* if((foo[i]&0xf0)==0)System.out.print("0");
* System.out.print(Integer.toHexString(foo[i]&0xff));
* if(i%16==15){System.out.println(""); continue;}
* if(i%2==1)System.out.print(" ");
* }
* }
*/
internal static String[] guess(byte[] I_S, byte[] I_C)
{
//System.out.println("guess: ");
String[] guess = new String[PROPOSAL_MAX];
LibSterileSSH.SecureShell.Buffer sb = new LibSterileSSH.SecureShell.Buffer(I_S);
sb.setOffSet(17);
LibSterileSSH.SecureShell.Buffer cb = new LibSterileSSH.SecureShell.Buffer(I_C);
cb.setOffSet(17);
for (int i = 0; i < PROPOSAL_MAX; i++)
{
byte[] sp = sb.getString(); // server proposal
byte[] cp = cb.getString(); // client proposal
//System.out.println("server-proposal: |"+new String(sp)+"|");
//System.out.println("client-proposal: |"+new String(cp)+"|");
int j = 0;
int k = 0;
//System.out.println(new String(cp));
//loop(using BREAK instead):
while (j < cp.Length)
{
while (j < cp.Length && cp[j] != ',')
{
j++;
}
if (k == j)
{
return(null);
}
String algorithm = StringAux.getString(cp, k, j - k);
//System.out.println("algorithm: "+algorithm);
int l = 0;
int m = 0;
while (l < sp.Length)
{
while (l < sp.Length && sp[l] != ',')
{
l++;
}
if (m == l)
{
return(null);
}
//System.out.println(" "+new String(sp, m, l-m));
if (algorithm.Equals(StringAux.getString(sp, m, l - m)))
{
guess[i] = algorithm;
//System.out.println(" "+algorithm);
goto BREAK;
}
l++;
m = l;
}
j++;
k = j;
}
BREAK:
if (j == 0)
{
guess[i] = "";
}
else if (guess[i] == null)
{
//System.out.println(" fail");
return(null);
}
}
// for(int i=0; i<PROPOSAL_MAX; i++){
// System.out.println("guess: ["+guess[i]+"]");
// }
return(guess);
}